Kezdőlap Felfedezés Súgó
Bejelentkezés
avadapal
/
3p-circuit-oram-prac-repro
1
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: 73a0b7da3e
Branch-ok Tag-ek
3p-circuit-o...
/
ObliVMGC
/
com
/
oblivm
/
backend
/
ot
/
OTExtSender.java

OTExtSender.java 4.1 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155 
  1. // Copyright (C) 2013 by Yan Huang <yhuang@cs.umd.edu>
    2. 

  2. // Improved by Xiao Shaun Wang <wangxiao@cs.umd.edu>
    3. 

  3. 

  4. package com.oblivm.backend.ot;
    5. 

  5. 

  6. import java.io.IOException;
    7. 

  7. import java.math.BigInteger;
    8. 

  8. import java.security.NoSuchAlgorithmException;
    9. 

  9. import java.security.SecureRandom;
    10. 

  10. import java.security.Security;
    11. 

  11. 

  12. import com.oblivm.backend.flexsc.Flag;
    13. 

  13. import com.oblivm.backend.gc.GCSignal;
    14. 

  14. import com.oblivm.backend.network.Network;
    15. 

  15. import com.oblivm.backend.rand.ISAACProvider;
    16. 

  16. 

  17. public class OTExtSender extends OTSender {
    18. 

  18. 	static class SecurityParameter {
    19. 

  19. 		public static final int k1 = 80; // number of columns in T
    20. 

  20. 	}
    21. 

  21. 

  22. 	private static SecureRandom rnd;
    23. 

  23. 

  24. 	static {
    25. 

  25. 		Security.addProvider(new ISAACProvider());
    26. 

  26. 		try {
    27. 

  27. 			rnd = SecureRandom.getInstance("ISAACRandom");
    28. 

  28. 		} catch (NoSuchAlgorithmException e) {
    29. 

  29. 			e.printStackTrace();
    30. 

  30. 		}
    31. 

  31. 	}
    32. 

  32. 

  33. 	private OTReceiver rcver;
    34. 

  34. 	private boolean[] s;
    35. 

  35. 	private GCSignal[] keys;
    36. 

  36. 

  37. 	Cipher cipher;
    38. 

  38. 

  39. 	public OTExtSender(int msgBitLength, Network channel) {
    40. 

  40. 		super(msgBitLength, channel);
    41. 

  41. 

  42. 		cipher = new Cipher();
    43. 

  43. 

  44. 		try {
    45. 

  45. 			initialize();
    46. 

  46. 		} catch (Exception e) {
    47. 

  47. 			e.printStackTrace();
    48. 

  48. 		}
    49. 

  49. 	}
    50. 

  50. 

  51. 	int poolIndex = 0;
    52. 

  52. 

  53. 	@Override
    54. 

  54. 	public void send(GCSignal[] m) {
    55. 

  55. 		try {
    56. 

  56. 			throw new Exception("It doesn't make sense to do single OT with OT extension!");
    57. 

  57. 		} catch (Exception e) {
    58. 

  58. 			e.printStackTrace();
    59. 

  59. 		}
    60. 

  60. 	}
    61. 

  61. 

  62. 	/*
    63. 

  63. 	 * Everything in msgPairs are effective Sender's messages.
    64. 

  64. 	 */
    65. 

  65. 	GCSignal[][] keyPairs = new GCSignal[SecurityParameter.k1][2];
    66. 

  66. 

  67. 	public void send(GCSignal[][] msgPairs) throws IOException {
    68. 

  68. 		GCSignal[][] pairs = new GCSignal[SecurityParameter.k1 + msgPairs.length][2];
    69. 

  69. 		for (int i = 0; i < SecurityParameter.k1; i++) {
    70. 

  70. 			pairs[i][0] = GCSignal.freshLabel(rnd);
    71. 

  71. 			pairs[i][1] = GCSignal.freshLabel(rnd);
    72. 

  72. 		}
    73. 

  73. 

  74. 		for (int i = SecurityParameter.k1; i < pairs.length; i++) {
    75. 

  75. 			pairs[i][0] = msgPairs[i - SecurityParameter.k1][0];
    76. 

  76. 			pairs[i][1] = msgPairs[i - SecurityParameter.k1][1];
    77. 

  77. 		}
    78. 

  78. 

  79. 		reverseAndExtend(s, keys, msgBitLength, pairs, channel, cipher);
    80. 

  80. 

  81. 		for (int i = 0; i < SecurityParameter.k1; i++) {
    82. 

  82. 			keyPairs[i][0] = pairs[i][0];
    83. 

  83. 			keyPairs[i][1] = pairs[i][1];
    84. 

  84. 		}
    85. 

  85. 		for (int i = 0; i < s.length; i++)
    86. 

  86. 			s[i] = rnd.nextBoolean();
    87. 

  87. 		keys = OTExtReceiver.reverseAndExtend(keyPairs, s, SecurityParameter.k1, channel, cipher);
    88. 

  88. 	}
    89. 

  89. 

  90. 	// Given s and keys, obliviously sends msgPairs which contains 'numOfPairs'
    91. 

  91. 	// pairs of strings, each of length 'msgBitLength' bits.
    92. 

  92. 

  93. 	static void reverseAndExtend(boolean[] s, GCSignal[] keys, int msgBitLength, GCSignal[][] msgPairs, Network channel,
    94. 

  94. 			Cipher cipher) throws IOException {
    95. 

  95. 		BigInteger[][] cphPairs = new BigInteger[SecurityParameter.k1][2];
    96. 

  96. 

  97. 		Flag.sw.startOTIO();
    98. 

  98. 		for (int i = 0; i < SecurityParameter.k1; i++) {
    99. 

  99. 			cphPairs[i][0] = channel.readBI();
    100. 

  100. 			cphPairs[i][1] = channel.readBI();
    101. 

  101. 		}
    102. 

  102. 		Flag.sw.stopOTIO();
    103. 

  103. 

  104. 		int numOfPairs = msgPairs.length;
    105. 

  105. 

  106. 		BitMatrix Q = new BitMatrix(numOfPairs, SecurityParameter.k1);
    107. 

  107. 

  108. 		for (int i = 0; i < SecurityParameter.k1; i++) {
    109. 

  109. 			if (s[i])
    110. 

  110. 				Q.data[i] = cipher.decrypt(keys[i].bytes, cphPairs[i][1], numOfPairs);
    111. 

  111. 			else
    112. 

  112. 				Q.data[i] = cipher.decrypt(keys[i].bytes, cphPairs[i][0], numOfPairs);
    113. 

  113. 		}
    114. 

  114. 

  115. 		BitMatrix tQ = Q.transpose();
    116. 

  116. 

  117. 		BigInteger biS = fromBoolArray(s);
    118. 

  118. 

  119. 		GCSignal[][] y = new GCSignal[numOfPairs][2];
    120. 

  120. 		for (int i = 0; i < numOfPairs; i++) {
    121. 

  121. 			y[i][0] = cipher.enc(GCSignal.newInstance(tQ.data[i].toByteArray()), msgPairs[i][0], i);
    122. 

  122. 			y[i][1] = cipher.enc(GCSignal.newInstance(tQ.data[i].xor(biS).toByteArray()), msgPairs[i][1], i);
    123. 

  123. 			y[i][0].send(channel);
    124. 

  124. 			y[i][1].send(channel);
    125. 

  125. 		}
    126. 

  126. 

  127. 		Flag.sw.startOTIO();
    128. 

  128. 		channel.flush();
    129. 

  129. 		Flag.sw.stopOTIO();
    130. 

  130. 

  131. 	}
    132. 

  132. 

  133. 	private void initialize() throws Exception {
    134. 

  134. 		Flag.sw.startOTIO();
    135. 

  135. 		channel.writeInt(msgBitLength);
    136. 

  136. 		channel.flush();
    137. 

  137. 		Flag.sw.stopOTIO();
    138. 

  138. 

  139. 		rcver = new NPOTReceiver(channel);
    140. 

  140. 

  141. 		s = new boolean[SecurityParameter.k1];
    142. 

  142. 		for (int i = 0; i < s.length; i++)
    143. 

  143. 			s[i] = rnd.nextBoolean();
    144. 

  144. 

  145. 		keys = rcver.receive(s);
    146. 

  146. 	}
    147. 

  147. 

  148. 	public static BigInteger fromBoolArray(boolean[] a) {
    149. 

  149. 		BigInteger res = BigInteger.ZERO;
    150. 

  150. 		for (int i = 0; i < a.length; i++)
    151. 

  151. 			if (a[i])
    152. 

  152. 				res = res.setBit(i);
    153. 

  153. 		return res;
    154. 

  154. 	}
    155. 

  155. }
    156.